public sealed class SecuritySettings : IMessage<SecuritySettings>, IEquatable<SecuritySettings>, IDeepCloneable<SecuritySettings>, IBufferMessage, IMessage
Reference documentation and code samples for the Compute Engine v1 API class SecuritySettings.
The authentication and authorization settings for a BackendService.
Optional. A URL referring to a networksecurity.ClientTlsPolicy resource that describes how clients should authenticate with this service's backends. clientTlsPolicy only applies to a global BackendService with the loadBalancingScheme set to INTERNAL_SELF_MANAGED. If left blank, communications are not encrypted. Note: This field currently has no impact.
public RepeatedField<string> SubjectAltNames { get; }
Optional. A list of Subject Alternative Names (SANs) that the client verifies during a mutual TLS handshake with an server/endpoint for this BackendService. When the server presents its X.509 certificate to the client, the client inspects the certificate's subjectAltName field. If the field contains one of the specified values, the communication continues. Otherwise, it fails. This additional check enables the client to verify that the server is authorized to run the requested service. Note that the contents of the server certificate's subjectAltName field are configured by the Public Key Infrastructure which provisions server identities. Only applies to a global BackendService with loadBalancingScheme set to INTERNAL_SELF_MANAGED. Only applies when BackendService has an attached clientTlsPolicy with clientCertificate (mTLS mode). Note: This field currently has no impact.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-08 UTC."],[[["\u003cp\u003eThe provided content details the \u003ccode\u003eSecuritySettings\u003c/code\u003e class within the Google Cloud Compute Engine v1 API, focusing on its various versions and functionalities related to authentication and authorization for \u003ccode\u003eBackendService\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eVersion 3.6.0 is the latest version of the \u003ccode\u003eSecuritySettings\u003c/code\u003e class and it is also shown that versions range all the way back to 1.0.0 in this content, each link directing to their respective doc pages.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eSecuritySettings\u003c/code\u003e is used for the authentication and authorization settings of a \u003ccode\u003eBackendService\u003c/code\u003e, including specifying a \u003ccode\u003eClientTlsPolicy\u003c/code\u003e for client authentication and \u003ccode\u003eSubjectAltNames\u003c/code\u003e for additional server verification.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eSecuritySettings\u003c/code\u003e class implements several interfaces like \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, \u003ccode\u003eIDeepCloneable\u003c/code\u003e, and \u003ccode\u003eIBufferMessage\u003c/code\u003e and inherits methods from the \u003ccode\u003eObject\u003c/code\u003e class, which are described in the documentation.\u003c/p\u003e\n"],["\u003cp\u003eWithin \u003ccode\u003eSecuritySettings\u003c/code\u003e two properties, \u003ccode\u003eClientTlsPolicy\u003c/code\u003e (a URL for client authentication policies) and \u003ccode\u003eSubjectAltNames\u003c/code\u003e (a list of SANs for server verification), are specified as optional.\u003c/p\u003e\n"]]],[],null,[]]
